# Report 2022-02

## News

 - [GDPR enforcer rules that IAB Europe’s consent popups are unlawful](https://www.iccl.ie/news/gdpr-enforcer-rules-that-iab-europes-consent-popups-are-unlawful)
 - [Philippine SIM Card Registration Act approved; Includes mandate for social media users to register real identities](https://www.technobaboy.com/2022/02/04/sim-card-registration-act-approved-includes-mandate-for-social-media-users-to-register-real-identities)
 - [It’s Back: Senators Want EARN IT Bill to Scan All Online Messages](https://www.eff.org/deeplinks/2022/02/its-back-senators-want-earn-it-bill-scan-all-online-messages)
 - [Another Israeli Firm, QuaDream, Caught Weaponizing iPhone Bug for Spyware](https://thehackernews.com/2022/02/another-israeli-firm-quadream-caught.html)
 - [UK.gov threatens to make adults give credit card details for access to Facebook or TikTok](https://www.theregister.com/2022/02/08/age_verification_for_social_media_ukgov_plans)
 - [Mozilla and Meta develop privacy preserving advertising tech IPA](https://www.ghacks.net/2022/02/12/mozilla-and-meta-develop-privacy-preserving-advertising-tech-ipa)
 - [France Rules That Using Google Analytics Violates GDPR Data Protection Law](https://thehackernews.com/2022/02/france-rules-that-using-google.html)
 - [Kitchen Appliance Maker Wants to Revolutionize Video Surveillance](https://theintercept.com/2022/02/11/surveillance-video-ai-bosch-azena)
 - [464 Australian data breaches reported to the OAIC in latter half of 2021](https://www.zdnet.com/article/464-australian-data-breaches-reported-to-the-oaic-in-latter-half-of-2021/)
 - [DNA data of sexual assault victims exposed in breach at US laboratory](https://portswigger.net/daily-swig/dna-data-of-sexual-assault-victims-exposed-in-breach-at-us-laboratory)

## Data Breaches

 - [Puma hit by data breach after Kronos ransomware attack](https://www.bleepingcomputer.com/news/security/puma-hit-by-data-breach-after-kronos-ransomware-attack)
 - [Croatian phone carrier A1 Hrvatska discloses data breach](https://securityaffairs.co/wordpress/127919/data-breach/a1-hrvatska-data-breach.html)
 - [American billionaire, Canadian civil servants among donors leaked in GiveSendGo hack](https://nationalpost.com/news/civil-servants-nasa-employees-and-an-american-billionaire-among-donors-leaked-in-givesendgo-hack)
 - [Fortune 500 service provider says ransomware attack led to leak of more than 500k SSNs](https://www.zdnet.com/article/fortune-500-service-provider-says-ransomware-attack-led-to-leak-of-more-than-500k-ssns-more)
 - [DPD package sniffing](https://www.pentestpartners.com/security-blog/dpd-package-sniffing/)

## Paper/Report

 - [Facebook Shadow Profiles ](https://www.cesifo.org/en/publikationen/2022/working-paper/facebook-shadow-profiles)
 - [Carbolytics, an analysis of the carbon costs of online tracking](https://carbolytics.org/report.html)
 - [AirGuard: Protecting Android Users From Stalking Attacks By Apple Find My Devices](https://arxiv.org/abs/2202.11813)
 - [AutoFR: Automated Filter Rule Generation for Adblocking](https://arxiv.org/abs/2202.12872)
 - [Opted Out, Yet Tracked: Are Regulations Enough to Protect Your Privacy?](https://arxiv.org/abs/2202.00885)
